SAP fixed maximum-severity bug in NetWeaver
SAP fixed maximum-severity bug in NetWeaver Pierluigi Paganini October 15, 2025 SAP addressed 13 new flaws, including a maximum severity vulnerability in SAP NetWeaver, which could…
Month: October 2025
Windows Agere Modem Driver 0-Day Vulnerabilities Actively Exploited To Escalate Privileges
Microsoft has disclosed two critical zero-day vulnerabilities in the Agere Modem driver bundled with Windows operating systems, confirming active exploitation to escalate privileges. The flaws,…
When Face Recognition Doesn’t Know Your Face Is a Face
“If you don’t include people with disabilities or people with facial differences in the development of these processes, no one’s going to think of these…
FortiPAM & FortiSwitch Manager Flaw Allows Attackers to Bypass Authentication
Fortinet has disclosed a critical security vulnerability affecting FortiPAM and FortiSwitchManager products that could enable attackers to bypass authentication mechanisms through brute-force attacks. The vulnerability,…
U.S. seizes $15 billion in Bitcoin linked to massive forced-labor crypto scam
The U.S. government has seized about $15 billion worth of Bitcoin connected to what prosecutors call one of the largest cryptocurrency fraud and human trafficking…
Adobe Security Update Fixes Critical CVE-2025-49553 Bug
Adobe has issued a set of security updates addressing more than 35 vulnerabilities across its product portfolio. These updates include fixes for several critical flaws…
NCSC Warns of UK Experiencing Four Cyber Attacks Every Week
The United Kingdom faces an unprecedented cyber security crisis as the National Cyber Security Centre (NCSC) reports handling an average of four ‘nationally significant’ cyber…
GhostBat RAT Android Malware Poses as Fake RTO Apps to Steal Banking Data from Indian Users
The GhostBat RAT campaign leverages diverse infection vectors—WhatsApp, SMS with shortened URLs, GitHub-hosted APKs, and compromised websites—to distribute malicious Android droppers. Once installed, these droppers…
Aura enhancements simplify opt-outs and strengthen online privacy
Aura new tools to help consumers reclaim control over their personal information online. The new capabilities automate some of the most time-consuming privacy tasks, including…
Hackers Target ICTBroadcast Servers via Cookie Exploit to Gain Remote Shell Access
Oct 15, 2025Ravie LakshmananVulnerability / Server Security Cybersecurity researchers have disclosed that a critical security flaw impacting ICTBroadcast, an autodialer software from ICT Innovations, has…
China responsible for rising cyber attacks, says NCSC
Chinese-linked hacking groups are responsible for a rising number of cyber attacks against the UK, the National Cyber Security Centre (NCSC) has confirmed. Paul Chichester,…
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor
Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor Pierluigi Paganini October 15, 2025 China-linked cyberespionage group Flax Typhoon hijacked an…